IE6 Security General questions

[RJK]

I've been having a good look into internet security during the past few
weeks and since upping some settings in IE6's security zones, I'm having
difficulty balancing functionality against letting all sorts of crap in, so
that certain web pages still load properly.

ebay's web site ends up with lots of little red X's on it, and the
"properties" for the little red x's contain something like 127.0.0.1 /
bug.cgi
....not sure if it's a "hosts redirection," or whether Zonealarm internet
security suite is blocking them, or whether it's changes in IE6's security
zone settings / or Advanced options, I've made.
(top image http://www.rk73.wanadoo.co.uk )

hosts file from http://www.mvps.org/winhelp2002/hosts.htm is working well,
specifically blocking doubleclick s**t
hence the "Action cancelled" in the lowermost images, (on my webspace).
but, since tweaking up settings in IE6's trusted sites zone, and setting
most to "prompt" so that I can see some of the crap that is coming in I'm
getting a pop out box (2nd image down on my web space) telling me that My
ISP home page is trying to open a doubleclick web page.

....so which radio button in IE6 "trusted sites zone" is producing the grey
dialogue box ?
....and any other suggestions on those radio button settings gladly accepted.

and why is it I can never download a file when "File download" is disabled
in Internet zone but, enabled in trusted sites zone, and the site delivering
the file is listed in my trusted sites zone ?

regards, Richard

 

[RJK]

Well, I've been having a rummage
http://www.hardwaresoftwarearticles.com/archive/index.php/t-9441.html
.... and changing custom settings one by one to see if I can pin down where
IE6's, "The current web page is trying to open a site on the internet. Do
you want to allow this? is coming from !

regards, Richard

 

[PA Bear]

Are you aware of this newsgroup? =>
microsoft.public.internetexplorer.security

 

[RJK]

Thanx Robear

I'll take a peek in there.

regards, Richard

 

[RJK]

...no many in there !

regards, Richard

Thanx Robear

I'll take a peek in there.

regards, Richard

 

[Robert Aldwinckle]

I've been having a good look into internet security during the past few
weeks and since upping some settings in IE6's security zones, I'm having
difficulty balancing functionality against letting all sorts of crap in, so
that certain web pages still load properly.

ebay's web site ends up with lots of little red X's on it, and the
"properties" for the little red x's contain something like 127.0.0.1 /
bug.cgi
...not sure if it's a "hosts redirection,"

Yes. That is HOSTS redirection. To see this use View Source
and find the equivalent src= filename for the Red-X. That will show
you the original domain name of it. Then look in your HOSTS file
for that domain name and you will find that you are redirecting it to
the local echo address you are seeing instead.

or whether Zonealarm internet
security suite is blocking them, or whether it's changes in IE6's security
zone settings / or Advanced options, I've made.
(top image http://www.rk73.wanadoo.co.uk )

hosts file from http://www.mvps.org/winhelp2002/hosts.htm is working well,
specifically blocking doubleclick s**t
hence the "Action cancelled" in the lowermost images, (on my webspace).
but, since tweaking up settings in IE6's trusted sites zone, and setting
most to "prompt" so that I can see some of the crap that is coming in I'm
getting a pop out box (2nd image down on my web space) telling me that My
ISP home page is trying to open a doubleclick web page.

...so which radio button in IE6 "trusted sites zone" is producing the grey
dialogue box ?

Advertisers know that people are doing these things to try to prevent
their messages from being seen, so they need to do more to try
to counteract such interventions. My guess is that there will be some
script at work in some novel way but you would have to look at the source
to know for sure.

Have you tried using maximal prompting with this (undiscosed) page?

...and any other suggestions on those radio button settings gladly accepted.

and why is it I can never download a file when "File download" is disabled
in Internet zone but, enabled in trusted sites zone, and the site delivering
the file is listed in my trusted sites zone ?

Details? It's probably not as you are assuming.
Have you tried tracing the transaction? Perhaps there is a redirect
that you are so far unaware of, etc.


HTH

Robert Aldwinckle
---

 

[RJK]

Thanx Robert,

I wasn't clear, as usual I was rambling !
....damn, I haven't set up Dreamweaver to be able to take those pics. down
!!.
I know that the "Action cancelled"'s are hosts redirection to 127.0.0.1
(local machine).

It's the ebay little red X's that appeared after I'd been tweaking IE6
security wettings, properties on them say something like ???/bug.cgi,
and there's a settings column in Zonealarm Privacy screen titled Web Bugs
.....will have to do more reading :-(

regards, Richard